RE: [PHP] How can I decrypt a password I previously coded with md5()?
Not MD5 is a hash code not an encryption! Jerry Verhoef -Original Message- From: Jose [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 30, 2002 10:51 AM To: [EMAIL PROTECTED] Subject: [PHP] How can I decrypt a password I previously coded with md5()? I'm making a proyect in php, and I have some doubts about the md5. I encript a password with it, but I don't know how to decrypt it again. Thanks. -- -- -- Jose Fco. ( [EMAIL PROTECTED] ). OLINET, S.L. Teléfono: 952207135 - Fax: 952207600 Avda. Juan Sebastián Elcano, 39-41. 29017 Málaga. -- -- -- -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] The information contained in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any form of disclosure, production, distribution or any action taken or refrained from in reliance on it, is prohibited and may be unlawful. Please notify the sender immediately. The content of the email is not legally binding unless confirmed by letter bearing two authorized signatures. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] How can I decrypt a password I previously coded with md5()?
The whole idea of MD5 is to generate a unique code from your string. It's practical impossible to generate an identical string that creates the same unique code. So youcan be sure that someone that creates the same code also created the same text... e.g. a password... it's impossible to reverse the procedure, else it wouldn't be safe... Greets, Edward Jose [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED]... I'm making a proyect in php, and I have some doubts about the md5. I encript a password with it, but I don't know how to decrypt it again. Thanks. -- -- -- Jose Fco. ( [EMAIL PROTECTED] ). OLINET, S.L. Teléfono: 952207135 - Fax: 952207600 Avda. Juan Sebastián Elcano, 39-41. 29017 Málaga. -- -- -- -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] How can I decrypt a password I previously coded with md5()?
Then how can I encrypt the password? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] How can I decrypt a password I previously coded with md5()?
huh? well, use md5()... if you want a password that can be decrypted too, I'm afraid you have to write you're own encryption / decryption algoritm... maybe you can use base64encode() (don't know for sure)... but in both cases, if someone guesses your used encoding algoritm, you have a problem... Edward Jose [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED]... Then how can I encrypt the password? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] How can I decrypt a password I previously coded with md5()?
As already said here, you cannot reverse the md5() function ... So : -The user fills a login box (login, password) -The PHP script 'crypts' this password with md5(); -The already-encrypted password in the database (or the passwd file) is compared with the one provided by the user (and encrypted by PHP) : if they aren't the same ... Bye !!! And for more security, I use a JavaScript MD5 function to encrypt the provided password in the user's browser so it goes already encrypted on the net ... Then PHP's just got to compare it with the one in the database !!! Le Mercredi 30 Janvier 2002 10:51, Jose a écrit : I'm making a proyect in php, and I have some doubts about the md5. I encript a password with it, but I don't know how to decrypt it again. Thanks. --- - -- Jose Fco. ( [EMAIL PROTECTED] ). OLINET, S.L. Teléfono: 952207135 - Fax: 952207600 Avda. Juan Sebastián Elcano, 39-41. 29017 Málaga. --- - -- -- ( ° Nicolas Costes //\\ IUT de La Roche / Yon / \/ ) [EMAIL PROTECTED] `- http://luxregina.free.fr -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] How can I decrypt a password I previously coded with md5()?
Take a look at the mcrypt libary http://www.php.net/manual/en/ref.mcrypt.php Jerry Verhoef -Original Message- From: Jose [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 30, 2002 11:10 AM To: [EMAIL PROTECTED] Subject: Re: [PHP] How can I decrypt a password I previously coded with md5()? Then how can I encrypt the password? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] The information contained in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any form of disclosure, production, distribution or any action taken or refrained from in reliance on it, is prohibited and may be unlawful. Please notify the sender immediately. The content of the email is not legally binding unless confirmed by letter bearing two authorized signatures. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] How can I decrypt a password I previously coded with md5()?
-Original Message- From: Nicolas Costes [mailto:[EMAIL PROTECTED]] Sent: 30 January 2002 10:19 And for more security, I use a JavaScript MD5 function to encrypt the provided password in the user's browser so it goes already encrypted on the net ... Then PHP's just got to compare it with the one in the database !!! Any chance of getting a look at this function, to save reinventing the wheel? Cheers! Mike - Mike Ford, Electronic Information Services Adviser, Learning Support Services, Learning Information Services, JG125, James Graham Building, Leeds Metropolitan University, Beckett Park, LEEDS, LS6 3QS, United Kingdom Email: [EMAIL PROTECTED] Tel: +44 113 283 2600 extn 4730 Fax: +44 113 283 3211 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] How can I decrypt a password I previously coded with md5()?
Hi Nicolas, I would be interested in seeing the javascript md5 function if possible. Thanks, Jason Garber IonZoft.com At 11:18 AM 1/30/2002 +0100, Nicolas Costes wrote: As already said here, you cannot reverse the md5() function ... So : -The user fills a login box (login, password) -The PHP script 'crypts' this password with md5(); -The already-encrypted password in the database (or the passwd file) is compared with the one provided by the user (and encrypted by PHP) : if they aren't the same ... Bye !!! And for more security, I use a JavaScript MD5 function to encrypt the provided password in the user's browser so it goes already encrypted on the net ... Then PHP's just got to compare it with the one in the database !!! Le Mercredi 30 Janvier 2002 10:51, Jose a écrit : I'm making a proyect in php, and I have some doubts about the md5. I encript a password with it, but I don't know how to decrypt it again. Thanks. --- - -- Jose Fco. ( [EMAIL PROTECTED] ). OLINET, S.L. Teléfono: 952207135 - Fax: 952207600 Avda. Juan Sebastián Elcano, 39-41. 29017 Málaga. --- - -- -- ( ° Nicolas Costes //\\ IUT de La Roche / Yon / \/ ) [EMAIL PROTECTED] `- http://luxregina.free.fr -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] How can I decrypt a password I previously coded with md5()?
You dont. md5 is one way encryption -Original Message- From: Jason G. [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 30, 2002 2:06 PM To: Nicolas Costes; Jose; [EMAIL PROTECTED] Subject: Re: [PHP] How can I decrypt a password I previously coded with md5()? Hi Nicolas, I would be interested in seeing the javascript md5 function if possible. Thanks, Jason Garber IonZoft.com At 11:18 AM 1/30/2002 +0100, Nicolas Costes wrote: As already said here, you cannot reverse the md5() function ... So : -The user fills a login box (login, password) -The PHP script 'crypts' this password with md5(); -The already-encrypted password in the database (or the passwd file) is compared with the one provided by the user (and encrypted by PHP) : if they aren't the same ... Bye !!! And for more security, I use a JavaScript MD5 function to encrypt the provided password in the user's browser so it goes already encrypted on the net ... Then PHP's just got to compare it with the one in the database !!! Le Mercredi 30 Janvier 2002 10:51, Jose a écrit : I'm making a proyect in php, and I have some doubts about the md5. I encript a password with it, but I don't know how to decrypt it again. Thanks. --- - -- Jose Fco. ( [EMAIL PROTECTED] ). OLINET, S.L. Teléfono: 952207135 - Fax: 952207600 Avda. Juan Sebastián Elcano, 39-41. 29017 Málaga. --- - -- -- ( ° Nicolas Costes //\\ IUT de La Roche / Yon / \/ ) [EMAIL PROTECTED] `- http://luxregina.free.fr -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] How can I decrypt a password I previously coded with md5()?
Exactly. The point of MD5 is that there is no way to get the password back. This makes things much more secure if your site gets hacked. Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Demitrious S. Kelly [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 30, 2002 3:03 PM To: 'Jason G.'; [EMAIL PROTECTED] Subject: RE: [PHP] How can I decrypt a password I previously coded with md5()? You don't. md5 is one way encryption -Original Message- From: Jason G. [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 30, 2002 2:06 PM To: Nicolas Costes; Jose; [EMAIL PROTECTED] Subject: Re: [PHP] How can I decrypt a password I previously coded with md5()? Hi Nicolas, I would be interested in seeing the javascript md5 function if possible. Thanks, Jason Garber IonZoft.com At 11:18 AM 1/30/2002 +0100, Nicolas Costes wrote: As already said here, you cannot reverse the md5() function ... So : -The user fills a login box (login, password) -The PHP script 'crypts' this password with md5(); -The already-encrypted password in the database (or the passwd file) is compared with the one provided by the user (and encrypted by PHP) : if they aren't the same ... Bye !!! And for more security, I use a JavaScript MD5 function to encrypt the provided password in the user's browser so it goes already encrypted on the net ... Then PHP's just got to compare it with the one in the database !!! Le Mercredi 30 Janvier 2002 10:51, Jose a écrit : I'm making a proyect in php, and I have some doubts about the md5. I encript a password with it, but I don't know how to decrypt it again. Thanks. --- - -- Jose Fco. ( [EMAIL PROTECTED] ). OLINET, S.L. Teléfono: 952207135 - Fax: 952207600 Avda. Juan Sebastián Elcano, 39-41. 29017 Málaga. --- - -- -- ( ° Nicolas Costes //\\ IUT de La Roche / Yon / \/ ) [EMAIL PROTECTED] `- http://luxregina.free.fr -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
